Attackers may trigger builds using unauthorized build agents or external services, leading to unauthorized code execution or deployment of malicious code.
Devtools / Build / Threats / DEV
Unauthorized Build Execution
CCC.Build.TH01
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Build.CP01 | Build Automation | Provides fully managed continuous integration service that compiles source code, run tests and produce software packages based on triggers or schedules. |
| CCC.Build.CP04 | Artifact Storage | Ability to securely store build artifacts for later use. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | T1195 |